3 matches found
CVE-2019-10940
A vulnerability has been identified in SINEMA Server All versions V14.0 SP2 Update 1. Incorrect session validation could allow an attacker with a valid session, with low privileges, to perform firmware updates and other administrative operations on connected devices. The security vulnerability...
CVE-2019-10940
CVE-2019-10940 affects Siemens SINEMA Server (all versions before 14.0 SP2 Update 1). The root cause is Incorrect session validation/privilege assignment, allowing a user with a valid, low-privilege session to perform firmware updates and other administrative operations on connected devices over ...
Siemens SINEMA Server
1. EXECUTIVE SUMMARY CVSS v3 9.9 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SINEMA Server Vulnerability: Incorrect Privilege Assignment 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker with a valid session, with...